Michael Kriese

I think you should use dependency dashboard approval for your UI packages, so you can approve the number you like to handle.

This only happens if you use auto merge or use `rebaseWhen=behind-base-branch`. If you leaf it on `auto` renovate will only rebase auto merge branches and conflicted branches. All other branches...

Sounds good to me.

can you please replace issues? the managers don't have issues, they extract and update dependencies

What does `curl -sv https://docker.artifactory.test/v2/` returns as headers? Any visible artifactory header we can detect?

I think the problem is the checkout. We don't have any auth configured for private submodules.

> @rarkins @viceice but...but... wasn't #5471 about exactly this? And #8164 was clearly saying `A token is correctly applied, as configured in hostrules`... I was really expecting this should work......

But as i said, renovate initialize the git submodules before the `sub-module` manager extracts something. https://github.com/renovatebot/renovate/blob/9f2e761b4ff06072e9703b184bb7688501440e52/lib/util/git/index.ts#L321 So there is no auth config for submodules, so it fails for private sub-modules.

@asgoel renovate app needs to be enabled on submodule repo too, then it should be able to it checkout

So there is no easy way to detect the invalid user from that request. and because it succeeds with 200, we don't detect any error. So I'm not sure we...